1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-28 07:21:54 +03:00
samba-mirror/docs-xml/smbdotconf/logon/adduserscript.xml

48 lines
2.2 KiB
XML

<samba:parameter name="add user script"
context="G"
type="string"
advanced="1" developer="1"
xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
<description>
<para>
This is the full pathname to a script that will be run <emphasis>AS ROOT</emphasis> by
<citerefentry><refentrytitle>smbd</refentrytitle> <manvolnum>8</manvolnum></citerefentry>
under special circumstances described below.
</para>
<para>
Normally, a Samba server requires that UNIX users are created for all users accessing
files on this server. For sites that use Windows NT account databases as their primary
user database creating these users and keeping the user list in sync with the Windows
NT PDC is an onerous task. This option allows smbd to create the required UNIX users
<emphasis>ON DEMAND</emphasis> when a user accesses the Samba server.
</para>
<para>
When the Windows user attempts to access the Samba server, at login (session setup in
the SMB protocol) time, <citerefentry><refentrytitle>smbd</refentrytitle>
<manvolnum>8</manvolnum></citerefentry> contacts the <smbconfoption name="password server"/>
and attempts to authenticate the given user with the given password. If the authentication
succeeds then <command moreinfo="none">smbd</command> attempts to find a UNIX user in the UNIX
password database to map the Windows user into. If this lookup fails, and
<smbconfoption name="add user script"/> is set then <command moreinfo="none">smbd</command> will
call the specified script <emphasis>AS ROOT</emphasis>, expanding any
<parameter moreinfo="none">%u</parameter> argument to be the user name to create.
</para>
<para>
If this script successfully creates the user then <command moreinfo="none">smbd</command> will
continue on as though the UNIX user already existed. In this way, UNIX users are dynamically created to
match existing Windows NT accounts.
</para>
<para>
See also <smbconfoption name="security"/>, <smbconfoption name="password server"/>,
<smbconfoption name="delete user script"/>.
</para>
</description>
<value type="default"/>
<value type="example">/usr/local/samba/bin/add_user %u</value>
</samba:parameter>